upload_model() in ... CVE-2019-16192

- AV AC AU C I A
发布: 2019-09-09
修订: 2019-09-10

upload_model() in /admini/controllers/system/managemodel.php in DocCms 2016.5.17 allow remote attackers to execute arbitrary PHP code through module management files, as demonstrated by a .php file in a ZIP archive.

0%
暂无可用Exp或PoC
产品及版本信息(CPE)暂不可用